1edbea7f119a17969d5b3991e91d32e7b3cf5e51b37adc906af6f8d17964f04a | Triage

Sharing

General

Target

56e28f889e8adeedf4cfd480445c50e0N.exe
Size

50KB
Sample

240901-dfr9tszcmj
MD5

56e28f889e8adeedf4cfd480445c50e0
SHA1

797ea0208c943410f63a811950d597a9f8c50ff9
SHA256

1edbea7f119a17969d5b3991e91d32e7b3cf5e51b37adc906af6f8d17964f04a
SHA512

d1f46ca998afd052e7ea5ad1a3730d4ef30ec0ee299770c128e40d77c7fe44d7e6fb30f327e0d1ce50e10862a9b61e10eda3db9d0175ab8e007031f42511f1d1
SSDEEP

1536:W7ZppApaJofJo8qqF5OKRgENwzqqF5OKRgENwsKB:6pWpOqF5OYgENwWqF5OYgENwV

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  56e28f889e8adeedf4cfd480445c50e0N.exe
- Size
  
  50KB
- MD5
  
  56e28f889e8adeedf4cfd480445c50e0
- SHA1
  
  797ea0208c943410f63a811950d597a9f8c50ff9
- SHA256
  
  1edbea7f119a17969d5b3991e91d32e7b3cf5e51b37adc906af6f8d17964f04a
- SHA512
  
  d1f46ca998afd052e7ea5ad1a3730d4ef30ec0ee299770c128e40d77c7fe44d7e6fb30f327e0d1ce50e10862a9b61e10eda3db9d0175ab8e007031f42511f1d1
- SSDEEP
  
  1536:W7ZppApaJofJo8qqF5OKRgENwzqqF5OKRgENwsKB:6pWpOqF5OYgENwWqF5OYgENwV
Score

9^/10

discovery ransomware
- Renames multiple (3256) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware